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( START ) 



WEB BROWSER SENDS HTTP 
REQUEST TO WEB SERVER 



601 



WEB SERVER RETURNS CERTIFICATE TO 
WEB BROWSER, ESTABLISHES SECURE 

SOCKETS LAYER ENCRYPTED 
CONNECTION AND SENDS LOGIN FORM 





j 

r 


WEB BROWSER SUBMITS LOGIN DATA 

INCLUDING USER NAME AND PASSWORD OF A 

KERBEROS PRINCIPAL TO WEB SERVER 
^ J 


r 


T 



WEB SERVER INITIATES COMMON 
GATEWAY INTERFACE (CGI) SERVICE 
INTERFACE PROCESS, PASSING LOGIN 
DATA OVER STANDARD INPUT 



604 



CGI SERVICE INTERFACE INITIATES 
KERBEROS INITIALIZATION CLIENT, 
PASSING LOGIN DATA AS INPUT 
PARAMETERS OVER STANDARD INPUT 



KERBEROS INITIALIZATION CLIENT SENDS 
REQUEST FOR TICKET-GRANTING TICKET 
(TGT) TO KEY DISTRIBUTION CENTER (KDC) 



TO FIGURE 5B 



FIGURE 5A 



FROM FIGURE 5A 



607 



KDC EXTRACTS USER KEY FOR KERBEROS 
PRINCIPAL FROM KERBEROS DATABASE 



KDC SENDS TGT, ALONG WITH KDC SESSION 
KEY ENCRYPTED WITH THE USER KEY, BACK 
TO KERBEROS INITIALIZATION CLIENT 



608 



KERBEROS INITIALIZATION CLIENT USES 
PASSWORD TO GENERATE USE KEY, 
DECRYPTS KDC SESSION KEY WITH USER KEY, 
STORES TGT AND KDC SESSION KEY IN 
CREDENTIALS CACHE, THEN EXITS 



CGI SERVICE INTERFACE ASCII- AND 
URL- ENCODES INFORMATION IN 
CREDENTIALS CACHE 



CGI SERVICE INTERFACE SENDS ENCODED 
CREDENTIALS CACHE INFORMATION AND 
COMMAND FORM TO WEB SERVER, DESTROYS 
CREDENTIALS CACHE, THEN EXITS 



WEB SERVER SENDS ENCODED 
CREDENTIALS CACHE INFORMATION 
AND COMMAND FORM TO WEB BROWSER 



( END 



FIGURE 5B 
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( START 



WEB BROWSER SUBMITS COMMAND DATA 
AND ENCODED CREDENTIALS CACHE 
DATA TO WEB SERVER 



1501 



WEB SERVER INITIATES COMMON 
GATEWAY INTERFACE (CGI) SERVICE 

INTERFACE PROCESS, PASSING 
ENCODED CREDENTIALS CACHE DATA 
AND COMMAND DATA 



CGI SERVICE INTERFACE DECODES ENCODED 
CREDENTIALS CACHE DATA AND INITIATES 
PARALLEL EXECUTION UTILITY 



PARALLEL EXECUTION UTILITY EXECUTES 
AT LEAST ONE SECURE REMOTE 
EXECUTION CLIENT 


1504 




r 




SECURE REMOTE EXECUTION CLIENT 
EXTRACTS TGT AND KDC SESSION KEY 
FROM CREDENTIALS CACHE 

V j 


1505 
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r 




SECURE REMOTE EXECUTION CLIENT SENDS 
TGT AND AUTHENTICATOR #1 TO KDC 


1506 



TO FIGURE 7B 

FIGURE 7A 



FROM FIGURE 7A 



KDC DECRYPTS TGT AND SENDS 
AUTHENTiCATOR #2 TO SECURE 
REMOTE EXECUTION CLIENT 



1507 



SECURE REMOTE EXECUTION CLIENT SENDS 
REQUEST FOR SERVER TICKET (ST) FOR 
MANAGED HOST TO KDC 



1508 



y^ 



KDC CREATES A SERVER SESSION KEY 
AND EXTRACTS THE KERBEROS SERVER 
KEY FOR THE MANAGED HOST 



1509 



y^ 



KDC SENDS ST FOR MANAGED HOST, 
ALONG WITH SERVER SESSION KEY 
ENCRYPTED WITH THE KDC SESSION KEY, 
BACK TO SECURE REMOTE EXECUTION 
CLIENT, WHICH DECRYPTS SERVER SESSION 
KEY WITH KDC SESSION KEY 



1510 



y/ 



SECURE REMOTE EXECUTION CLIENT SENDS 
CONNECTION REQUEST TO INTERNET SUPER- 
DAEMON ON MANAGED HOST 



1511 



y/ 



INTERNET SUPER-DAEMON INITIATES 
SECURE REMOTE EXECUTION DAEMON 



y^ 



TO FIGURE 7C 



FIGURE 7B 



FROM FIGURE 7B 



SECURE REMOTE EXECUTION CLIENT SENDS 
ST FOR MANAGED HOST AND AUTHENTICATOR 
#3 TO SECURE REMOTE EXECUTION DAEMON 



y^ 



SECURE REMOTE EXECUTION DAEMON 
EXTRACTS SERVER KEY FOR MANAGED HOST 
FROM KEY TABLE, DECRYPTS ST, AND SENDS 
AUTHENTICATOR #4 TO SECURE REMOTE 
EXECUTION CLIENT, ESTABLISHING 
ENCRYPTION CONNECTION 



1514 



y^ 



SECURE REMOTE EXECUTION CLIENT SENDS 
COMMAND DATA TO SECURE REMOTE 
EXECUTION DAEMON 



1515 



SECURE REMOTE EXECUTION DAEMON 
EXTRACTS ACCESS CONTROL LISTS (ACLs) 

FROM ACL FILE AND VERIFIES THAT 
KERBEROS PRINCIPAL IS AUTHORIZED TO 
EXECUTE COMMAND AS THE SPECIFIED USER 
ON MANAGED HOST 



y^ 



y^ 



SECURE REMOTE EXECUTION DAEMON SENDS 
AUDIT TRAIL DATA TO SYSTEM LOGGING 
DAEMON ON MANAGED HOST 



y^ 



1 1518 

SYSTEM LOGGING DAEMON ON MANAGED \y^y 
HOST SENDS AUDIT TRAIL DATA TO SYSTEM ^ 
LOGGING DAEMON ON SERVER 



TO FIGURE 7D 

FIGURE 7C 



FROM FIGURE 7C 



SYSTEM LOGGING DAEMON ON SERVER 
RECORDS AUDIT TRAIL DATA IN LOG FILE 



1519 



SECURE REMOTE EXECUTION DAEMON 1520 
INITIATES SERVICE PROCESS TO 
EXECUTE COMMAND, PASSING COMMAND 
DATA AS INPUT PARAMETERS 



1521 



SERVICE PROCESS RETURNS OUTPUT 
TO SECURE REMOTE EXECUTION 
DAEMON, THEN EXITS 



SECURE REMOTE EXECUTION DAEMON 
SENDS OUTPUT TO SECURE REMOTE 
EXECUTION CLIENT, THEN EXITS 



1522 



TO FIGURE 7E 



FIGURE 7D 



FROM FIGURE 7D 



SECURE REMOTE EXECUTION CLIENT 
SENDS OUTPUT TO PARALLEL 
EXECUTION UTILITY, THEN EXITS 



1523 



PARALLEL EXECUTION UTILITY PASSES 
OUTPUT TO CGI SERVICE INTERFACE 



1524 



CGI SERVICE INTERFACE SENDS OUTPUT 
TO WEB SERVER, DESTROYS INFORMATION IN 
CREDENTIALS CACHE, THEN EXITS 



WEB SERVER SENDS OUTPUT 
TO WEB BROWSER 



( END ") 



FIGURE 7E 
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FIG. 9A 



3200 - 



WEB BROWSER 2020 SUBMITS COMMAND DATA AND ENCODED 
CREDENTIALS CACHE DATA TO WEB SERVER 2120 (ARROW 3000) 



WEB SERVER 2120 EXECUTES REMOTE COMMAND CLIENT SERVLET 
2400 PASSING ENCODED CREDENTIALS CACHE AND COMMAND 
DATA (ARROW 3002) 



REMOTE COMMAND CLIENT SERVLET 2400 EXECUTE SHELL 
SERVICE INTERFACE 2420 PASSING ENCODED CREDENTIALS CACHE 
AS STANDARD INPUT (ARROW 3004) 



3203- 



SHELL SERVICE INTERFACE 2420 DECODES ENCODED CREDENTIALS 
CACHE DATA AND RESTORES IT (ARROW 3006) 



SHELL SERVICE INTERFACE 2420 EXECUTED CERTIFICATE SERVER 
2440, REQUESTING DIGITAL CERTIFICATE AND PRIVATE KEY 
BELONGING TO KERBEROS PRINCIPAL (ARROW 3008) 



CERTIFICATE SERVER 2440 EXTRACTS TGT AND KDC SESSION KEY 
FROM CREDENTIALS CACHE 2450 (ARROW 3010) 



CERTIFICATE SERVER 2440 SENDS TGT AND AUTHENTICATOR TO 
KDC 2300 (ARROW 3012) 



KDC 2300 DECRYPTS THE TGT AND SENDS AN AUTHENTICATION TO 
CERTIFICATE SERVER 2440 (ARROW 3014) 



CERTIFICATE SERVER 2440 SENDS REQUEST FOR SERVER TICKET 
(ST) FOR GATEWAY SERVER 2100 TO KDC 2300 (ARROW 3016) 



TO FIG. 9B 



FIG. 9B 



KDC 2300 EXTRACTS THE KERBEROS PRINCIPAL FOR GATEWAY 
SERVER 2100 FROM KERBEROS DATABASE 2310 AND CREATES A ST 
FOR GATEWAY SERVER 2100 (ARROW 3018) 



KDC 2300 SENDS ST FOR GATEWAY SERVER 2100 TO CERTIFICATE 
SERVER 2440 (ARROW 3020) 



CERTIFICATE SERVER 2440 EXTRACTS THE SERVER KEY FOR 
GATEWAY SERVER 2100 FROM KEY FILE 2460 AND DECRYPTS THE 
ST (ARROW 3022) 



3212- 



CERTIFICATE SERVER 2440 EXTRACTS AN ACL FROM GATEWAY ACL 
FILE 2470 AND VERIFIES THAT THE KERBEROS PRINCIPAL IS 
AUTHORIZED TO ACCESS A SPECIFIC DIGITAL CERTIFICATE AND 
MATCHING PRIVATE KEY (ARROW 3024) 



CERTIFICATE SERVER 2440 EXTRACTS THE DIGITAL CERTIFICATE 

AND MATCHING PRIVATE KEY BELONGING TO THE KERBEROS 
PRINCIPAL FROM SECOND GATEWAY CERTIFICATE DATABASE 2480 
(ARROW 3026) 



CERTIFICATE SERVER 2440 EXTRACTS RETURNS THE DIGITAL 
CERTIFICATE AND MATCHING PRIVATE KEY TO SHELL SERVICE 
INTERFACE 2420, THEN EXITS (ARROW 3028) 



SHELL SERVICE INTERFACE 2420 RETURNS THE DIGITAL 
CERTIFICATE AND MATCHING PRIVATE KEY TO REMOTE COMMAND 
CLIENT SERVLET 2400, DESTROYS THE CREDENTIALS CACHE, THEN 
EXITS (ARROW 3030) 



REMOTE COMMAND CLIENT SERVLET 2400 CREATES MULTIPLE 

INSTANCES OF REMOTE COMMAND EXECUTION CLIENT 2410, 
PASSING REMOTE COMMAND DATA AND A COPY OF THE DIGITAL 
CERTIFICATE AND MATCHING PRIVATE KEY TO EACH (ARROW 3032) 



T 



TO FIG. 9C 



FIG. 9C 



REMOTE COMMAND EXECUTION CLIENT 2410 SENDS SSL 
CONNECTION REQUEST TO HOST PROXY AND EXECUTION SERVER 
2680 ON REMOTE HOST 2600 (ARROW 3034) 



3218- 



HOST PROXY AND EXECUTION SERVER 2680 EXTRACTS THE DIGITAL 
CERTIFICATE AND MATCHING PRIVATE KEY FROM HOST 
CERTIFICATE DATABASE 2710 (ARROW 3036) 



HOST PROXY AND EXECUTION SERVER 2680 THEN SENDS THE 
DIGITAL CERTIFICATE AND A CLIENT DIGITAL CERTIFICATE REQUEST 
TO REMOTE COMMAND EXECUTION CLIENT 2410 (ARROW 3038) 



3220- 



3221 - 



REMOTE COMMAND EXECUTION CLIENT 2410 SENDS THE CLIENT 
DIGITAL CERTIFICATE BACK TO HOST PROXY AND EXECUTION 
SERVER 2680 (ARROW 3040) 



REMOTE COMMAND EXECUTION 2410 SENDS AS ENCRYPTED PRE- 
MASTER SECRET NUMBER AND A DIGITAL SIGNATURE TO HOST 
PROXY AND EXECUTION SERVER 2680, THE CONNECTION CHANGES 
TO AN ENCRYPTED STATE AND COMMAND IS PASSED (ARROW 3042) 



I 



HOST PROXY AND EXECUTION SERVER 2680 EXTRACTS THE ACL 
FROM ACL FILE 2730 AND VERIFIES THAT THE DIGITAL CERTIFICATE 
HOLDER IS AUTHORIZED TO EXECUTE COMMANDS ON REMOTE 
HOST 2600 (ARROW 3044) 



3223- 



HOST PROXY AND EXECUTION SERVER 2680 RECORDS AUDIT DATA 
IN HOST LOG FILE 2790 (ARROW 3046) 



HOST PROXY AND EXECUTION SERVER 2680 SENDS AUDIT DATA TO 
SYSTEM LOGGING DAEMON 2800 ON GATEWAY SERVER 2100 
(ARROW 3048) 



SYSTEM LOGGING DAEMON 2800 RECORDS AUDIT DATA IN 
GATEWAY LOG FILE 2810 (ARROW 3050) 



TO FIG. 9D 



FIG. 9D 



3226 - 



HOST PROXY AND EXECUTION SERVER 2680 EXECUTES COMMAND 
INTERPRETER 2690, PASSING A COMMAND AS INPUT PARAMETER 
(ARROW 3052) 



COMMAND INTERPRETER 2690 RETURNS OUTPUT TO HOST PROXY 
AND EXECUTION SERVER 2680, AND THEN EXITS (ARROW 3054) 



3228 - 



HOST PROXY AND EXECUTION SERVER 2680 SENDS OUTPUT TO 
REMOTE COMMAND EXECUTION CLIENT 2410 (ARROW 3056) 



3229- 



REMOTE COMMAND EXECUTION CLIENT 2410 RELAYS THE OUTPUT 
TO REMOTE COMMAND CLIENT SERVLET 2400, THEN EXITS (ARROW 
3058) 



REMOTE COMMAND CLIENT SERVLET 2400 COLLECTS OUTPUT 
FROM REMOTE EXECUTION CLIENT 2410 AND SENDS IT TO WEB 
SERVER 2120 (ARROW 3060) 



WEB SERVER 2120 SENDS THE OUTPUT TO WEB BROWSER 2020 
AND THE SYSTEM RETURNS TO THE QUIESCENT STATE (ARROW 
3062) 



FIG. 11A 



DOWNLOADABLE EXECUTABLE INTERACTIVE CLIENT (DEIC) 2030 OF 
CLIENT 2010 SENDS A SSL CONNECTION REQUEST TO GATEWAY 
PROXY AND EXECUTION SERVER 2130 (ARROW 3100) 



GATEWAY PROXY AND EXECUTION SERVER 2130 EXTRACTS A 
DIGITAL CERTIFICATE AND MATCHING PRIVATE KEY FROM A FIRST 
CERTIFICATE DATABASE 2140 (ARROW 3102) 



GATEWAY PROXY AND EXECUTION SERVER 2130 SENDS THE 
DIGITAL CERTIFICATE TO DEIC 2030 (ARROW 3104) 



DEIC 2030 SENDS ENCRYPTED PRE-MASTER SECRET NUMBER AND 
A DIGITAL SIGNATURE TO GATEWAY PROXY AND EXECUTION 
SERVER 2130 AND CONNECTION CHANGES TO THE ENCRYPTED 
STATE (ARROW 3106) 



DEIC 2030 SENDS AN ENCODED CREDENTIALS CACHE AND REMOTE 
INTERACTIVE LOGIN DATA TO GATEWAY PROXY AND EXECUTION 
SERVER (ARROW 3108) 



GATEWAY PROXY AND EXECUTION SEVER 2130 EXECUTES A SHELL 
SERVICE INTERFACE 2420, PASSING THE ENCODED CREDENTIALS 
CACHE TO SHELL SERVICE INTERFACE 2420 OVER STANDARD INPUT 
(ARROW 31 10) 



SHELL SERVICE INTERFACE 2420 DECODES THE CREDENTIALS 
CACHE AND RESTORES IT TO A CREDENTIALS CACHE 2450 (ARROW 
3112) 



3407- 



SHELL SERVICE INTERFACE 2420 EXECUTES CERTIFICATE SERVER 
2440, REQUESTING A DIGITAL CERTIFICATE AND MATCHING PRIVATE 
KEY BELONGING TO A KERBEROS PRINCIPAL (ARROW 31 14) 



TO FIG. 11B 



FIG. 11 B 



CERTIFICATE SERVER 2440 EXTRACTS A TGT AND A KDC SESSION 
KEY FROM CREDENTIALS CACHE 2450 (ARROW 311 6) 



3409-~T- 



CERTIFICATE SERVER 2440 SENDS THE TGT AND AN 
AUTHENTICATOR TO KDC 2300 (ARROW 311 8) 



KDC 2300 DECRYPTS THE TGT AND SENDS ANOTHER 
AUTHENTICATOR BACK TO CERTIFICATE SERVER 2440 (ARROW 
3120) 



CERTIFICATE SERVER 2440 SENDS A REQUEST FOR A ST FOR 
GATEWAY SERVER 2100 TO KDC 2300 (ARROW 3122) 



KDC 2300 EXTRACTS A KERBEROS SERVER PRINCIPAL KEY FOR 
GATEWAY SERVER 2100 FROM KERBEROS DATABASE 2310 AND 
CREATES A ST FOR GATEWAY SERVER 2100 (ARROW 3124) 



KDC 2300 SENDS THE ST FOR GATEWAY SERVER 2100 BACK TO 
CERTIFICATE SERVER 2440 (ARROW 3126) 



CERTIFICATE SERVER 2440 EXTRACTS A SERVER KEY FOR 
GATEWAY SERVER 2100 FROM KEY FILE 2460 AND THEN DECRYPTS 
THE ST (ARROW 3128) 



CERTIFICATE SERVER 2440 EXTRACTS AN ACL FROM GATEWAY ACL 
FILE 2470 AND VERIFIES THAT THE KERBEROS PRINCIPAL IS 
AUTHORIZED TO ACCESS A SPECIFIC DIGITAL CERTIFICATE AND 
MATCHING PRIVATE KEY (ARROW 3130) 



TO FIG. 11C 



FIG. 11C 
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CERTIFICATE SERVER 2440 EXTRACTS A DIGITAL CERTIFICATE AND 
MATCHING PRIVATE KEY BELONGING TO A KERBEROS PRINCIPAL 
FROM SECOND GATEWAY CERTIFICATE DATABASE (ARROW 3132) 



CERTIFICATE SERVER 2440 RETURNS THE DIGITAL CERTIFICATE 
3417-0- AND MATCHING PRIVATE KEY TO SHELL SERVICE INTERFACE 2420, 
THEN EXITS (ARROW 3134) 
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SHELL SERVICE INTERFACE 2420 RETURNS THE DIGITAL 
CERTIFICATE AND MATCHING PRIVATE KEY TO GATEWAY PROXY 
AND EXECUTION SERVER 2130, DESTROYS THE CREDENTIALS 

CACHE, THEN EXITS (ARROW 3136) 



GATEWAY PROXY AND EXECUTION SERVER 2130 SENDS AN SSL 
CONNECTION REQUEST TO HOST PROXY AND EXECUTION SERVER 
2680 ON REMOTE HOST 2600 (ARROW 3138) 



HOST PROXY AND EXECUTION SERVER 2680 EXTRACTS A DIGITAL 
CERTIFICATE AND MATCHING PRIVATE KEY FROM HOST 
CERTIFICATE DATABASE 2710 (ARROW 3140) 



3421^ 



HOST PROXY AND EXECUTION SERVER 2680 SENDS THE DIGITAL 
CERTIFICATE AND A CLIENT CERTIFICATE REQUEST TO GATEWAY 
PROXY AND EXECUTION SERVER 2130 (ARROW 3142) 



GATEWAY PROXY AND EXECUTION SERVER 2130 SENDS THE 
DIGITAL CERTIFICATE TO HOST PROXY AND EXECUTION SERVER 
2680 (ARROW 3144) 



GATEWAY PROXY AND EXECUTION SERVER 2130 SENDS AN 
ENCRYPTED PRE-MASTER SECRET NUMBER AND A DIGITAL 
SIGNATURE TO HOST PROXY AND EXECUTION SERVER 2680 AND 
THE CONNECTION CHANGES TO AN ENCRYPTED STATE 
(ARROW 3146) 



TO FIG. 11D 



FIG. 11D 



HOST PROXY AND EXECUTION SERVER 2680 EXTRACTS AN ACL 
FROM HOST ACL FILE 2730 AND VERIFIES THAT THE HOLDER OF THE 
CLIENT DIGITAL CERTIFICATE IS AUTHORIZED TO EXECUTE 
COMMANDS ON REMOTE HOST 2600 (ARROW 3148) 



3425^-- 



HOST PROXY AND EXECUTION SERVER 2680 RECORDS AUDIT DATA 
IN HOST LOG FILE 2790 (ARROW 3150) 



3426-. 



HOST PROXY AND EXECUTION SERVER 2680 SENDS AUDIT DATA TO 
SYSTEM LOGGING DAEMON 2800 ON GATEWAY SERVER 2100 
(ARROW 3152) 



SYSTEM LOGGING DAEMON 2800 RECORDS AUDIT DATA IN 
GATEWAY LOG FILE 2810 (ARROW 3154) 



3428- 



HOST PROXY AND EXECUTION SERVER 2680 EXECUTES COMMAND 
INTERPRETER 2690 (ARROW 3156) 



